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DETAILED ACTION 

1 . Claims 1-23 and 26-31 are pending in this office action, claims 24 and 25 are 
cancelled. 

2. Applicant's arguments filed May 1 3, 2004, have been fully considered but they 
are not persuasive. 

Rejections 

3. The text of those sections of Title 35, U.S. Code not included in this action can 
be found in a prior Office action. 

Claim Rejections - 35 USC § 103 

4. Claims 1, 12. 16. 17. and 26-30 are rejected under 35 U.S.C. 1 03(a) as being 
unpatentable over Ohran (U.S. Patent No. 6,397,307) in view of Yanai et al. (U.S. 
Patent No. 5,544,347). 

Regarding claim 1 . Ohran teaches a method of controlling security of data in a 
storage system having a local disk system and a remote disk system comprising: 
• In the local disk system: 

o When a write of data is to be made to the local disk system retrieving a 
previously stored encryption key (col. 1 1 , lines 24-26 suggests to use 
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stored encryption keys for encryption, even though the teachings of Ohran 
dynamically creates an encryption key); 
o Encrypting the data (col. 1 1 , lines 43-45); 

o Transferring the data to the remote disk system (col. 1 1 , lines 45-47); 
• Then in the remote disk system: 

o Determining an address for storage of the data in the remote disk system 

(col. 9, lines 29-35 and col. 10, lines 21-27); 
o Writing the data in the remote disk system (col. 9, lines 39-43 and col. 10, 

lines 21-27); 

o Determining whether the data is to be stored in an encrypted form (col. 1 1 , 
lines 40-43 suggests that some of the data can be encrypted, but does not 
necessarily mean the same data has to be decrypted); and 

o If the data is to be stored in a decrypted form, decrypting and writing the 
data in the remote disk system (col. 1 1 , lines 47-49); 

o If the data is to be stored in an encrypted form, writing the data in the 
remote disk system without decrypting the data (col. 1 1 , lines 40-43, the 
word may suggests that the data does not have to be decrypted); and 

o Wherein the local disk system is coupled to a host computer to allow the 
host computer to access data stored in the local disk system (fig. 1 , ref. 
num 12 connected to 20). 



Application/Control Number: 09/618,202 
Art Unit: 2136 



Page 4 



Ohran does not teach notifying the local disk system that the step of writing the 
data is complete. 

Yanai et al. teaches notifying the local disk system that the step of writing the 
data is complete (col. 6, lines 41-46). 

It would have been obvious to one of ordinary skill in the art, at the time the 
invention was made, to combine notifying the local disk system that the step of writing 
the data is complete, as taught by Yanai et al. . to the method of Ohran . It would have 
been obvious for such modifications because the notification allows the local disk 
system to know that the data is synchronized between the local and remote disk 
system. 

Regarding claim 12 , Ohran teaches a method for changing an encryption key 
while operating a storage system having a local disk system and a remote disk system, 
the method comprising: 

• Storing an encryption key in a memory in the local disk system (fig. 6, ref. num 
106a); 

• Transmitting the encryption key to the remote disk system and storing it in a 
memory there (fig. 6, ref. num 16 and 106b); 
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• Issuing split request from the local disk system to the remote disk system to allow 
them to operate independently (fig. 2, the time between consolidations the local 
system is operated independently of the remote system); 

• Using a new encryption key to begin storing data in the local disk system after 
issuing the split request (col. 1 1 , lines 52-55); and 

• Using a new encryption key to begin storing data in the remote disk system after 
receiving the split request (col. 11, lines 52-55). 

Qhran does not teach re-synchronizing the local disk system and the remote disk 
system. 

Yanai et al. teaches re-synchronizing the local disk system and the remote disk 
system (col. 6, lines 38-51). 

It would have been obvious to one of ordinary skill in the art, at the time the 
invention was made, to combine re-synchronizing the local system and the remote 
system, as taught by Yanai etaL to the system of Qhran . It would have been obvious 

for such modifications because synchronizing the data between the local and remote 

■ C 

systems will make sure the remote system has the same data as the local system. This 
is important in systems where data is mirrored or back ed-up. 
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Regarding claims 16 and 26 . Ohran teaches a method/system of controlling 
encryption in a storage system having a local disk system and a remote disk system 
comprising: 

• Storing an encryption key in a memory in the local disk system (fig. 6, ref. num 
106a); 

• Transmitting the encryption key to the remote disk system and storing it in a 
memory there (fig. 6, ref. num 16 and 106b); 

• Splitting the local disk system from the remote disk system to allow them to 
operate independently (fig. 2, the time between consolidations the local system is 
operated independently of the remote system); and 

• Switching encryption to an opposite state from a previous state after splitting the 
local disk system and remote disk system (col. 11, lines 40-43, the data can be 
encrypted at any time and can not be encrypted anytime, it all depends on the 
users' data). 

Ohran does not teach re-synchronizing the local disk system and the remote disk 
system. 



Yanai et al. teaches re-synchronizing the local disk system and the remote disk 
system (col. 6, lines 38-51). 
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It would have been obvious to one of ordinary skill in the art, at the time the 
invention was made, to combine re-synchronizing the local system and the remote 
system, as taught by Yanai et aL to the system of Ohran . It would have been obvious 
for such modifications because synchronizing the data between the local and remote 
systems will make sure the remote system has the same data as the local system. This 
is important in systems where data is mirrored or backed-up. 

Regarding claim 17 , Ohran teaches a storage system comprising: 

• A local disk system (fig. 1 , ref. num 12); 

o Said local disk system being coupled to a host computer to enable the 
host computer to access said volumes (fig. 1 , ref. num 20 connected to 
12); 

• A communications link coupling the local system to the remote system (fig. 1 , ref. 
num 16); 

• Wherein the local disk system determines whether encryption is to be employed 
in the data on the local disk system, and if so, encrypts the data to be transferred 
to the remote disk system (col. 1 1 , lines 24-26 and 40-45 suggests that some or 
all of the data may be encrypted, meaning it does not have to be), and 

• Wherein the remote disk system determines whether to store the data in either 
encrypted form or unencrypted form and stores the data in that form in the 
remote disk system (col. 11, lines 24-26 and 40-45 suggests that some or all of 
the data may be encrypted, meaning it does not have to be). 
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Oh ran does not teach the local system or remote system including a plurality of 
volumes of media for storing data and notifying the local disk system that the data has 
been stored. 

Yanai et al. teaches the local system and remote system including a plurality of 
volumes of media for storing data (fig. 1 , ref. num 20 and 48) and notifying the local disk 
system that the data has been stored (col. 6, lines 41-46). 

It would have been obvious to one of ordinary skill in the art, at the time the 
invention was made, to combine the local system including a plurality of volumes of 
media for storing data and notifying the local disk system that the data has been stored, 
as taught by Yanai et al. , to the system of Ohran . It would have been obvious for such 
modifications because the plurality of volumes for storing data allows the local disk 
system to contain a volume that is local only to it and volumes that are accessible by the 
remote system (col. 5, lines 1 1-34) and the notification allows the local disk system to 
know that the data is synchronized between the local and remote disk system. 

Regarding claim 27 , Ohran teaches a method of controlling security of data in a 
storage system having a local disk system and a remote disk system comprising: 
• In the local disk system: 

o Receiving a data update request from a host computer connected to the 
local disk system wherein said data update request includes a location of 
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a first portion of the local disk system (col. 5, lines 39-52, the local disk 

system is required to determine update times); 
o Assigning a key to the local disk system (col .11, lines 43-45); 
o Encrypting the data stored in the local disk system (col. 1 1 , lines 43-45); 
o Transferring the encrypted data to the remote disk system (col. 1 1 , lines 

45-47); 

• Then in the remote disk system: 

o Decrypting the data using the assigned key (col. 1 1 , lines 47-49); and 
o Writing the decrypted data into the remote disk system (col. 9, lines 39-43 
and col. 10, lines 21-27). 

Ohran does not teach a first portion of the local disk system or a second portion 
of the remote disk system. 

Yanai et al. teaches a first portion of the local disk system (fig. 1 , ref. num 22a) 
and a second portion of the remote disk system (fig. 1, ref. num 50a). 

It would have been obvious to one of ordinary skill in the art, at the time the 
invention was made, to combine a first portion of the local disk system and a second 
portion of a remote disk system, as taught by Yanai et al. . to the method of Ohran . It 
would have been obvious for such modifications because the first and second portions 
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allow the local and remote disk system to contain separate portions that are local only 
and accessible by the other disk system (col . 5, lines 1 1 -34). 

Regarding claim 28 . the combination of Ohran as modified by Yanai etal. 
teaches wherein the first portion comprises at least a volume of the local storage 
system and the second portion comprises at least a volume of the remote disk system 
(see fig. 1, ref. num 20 and 48 of Yanai et al.). 

Regarding claim 29 , the combination of Ohran as modified by Yanai etal. 
teaches wherein the first portion comprises a group of volumes of the local storage 
system (fig. 1 , ref. num 22a-c of Yanai et al.), and the second portion comprises a group 
of volumes of the remote storage system (see fig. 1 , ref. num 50a-c of Yanai et al.). 

Regarding claim 30 . Ohran teaches a storage system comprising: 

• A local disk system (fig. 1 , ref. num 1 2); 

• A remote disk system (fig. 1 , ref. num 1 4); 

• A first computer program operating on the local system to retrieve selected data 
from storage on the local system, and encrypt the selected data using an 
encryption key (col. 11, lines 43-45); 

• A communications link coupling the local disk system to the remote disk system 
wherein the local disk system retrieves selected data from one of the volumes on 
the local system, encrypts that selected data using an encryption key, and 
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transmits the encrypted selected data to the remote disk system (fig. 1 , ref. num 
16, 12, and 20); and 

• Wherein the remote disk system decrypts the selected data received from the 
communications link and store that selected data in unencrypted form in one of 
the volumes of media the remote system (col. 1 1 , lines 47-49). 
Ohran does not teach the local and remote disk system including a plurality of 
volumes of media for storing data. 

Yanai et al. teaches the local and remote system including a plurality of volumes 
of media for storing data (fig. 1 , ref. num 20 and 48). 

It would have been obvious to one of ordinary skill in the art, at the time.the 
invention was made, to combine the local and remote system including a plurality of 
volumes of media for storing data, as taught by Yanai et al. , to the system of Ohran . It 
would have been obvious for such modifications because the plurality of volumes for 
storing data allow each disk system to contain a volume that is local only to their system 
and volumes that are accessible by the other (local/remote) system (col. 5, lines 11-34). 



Claims 2-8, 18-22, and 31 are rejected under 35 U.S.C. 103(a) as being 
unpatentable over Ohran (U.S. Patent No. 6,397,307) in view of Yanai et al. (U.S. 
Patent No. 5,544,347), and further in view of Jacobson (U.S. Patent No. 5,548,649). 
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Regarding claims 2, 18, and 31 , the combination of Ohran as modified by Yanai 
et al. teaches wherein the data transfer between the local disk system and the remote 
disk system occurring via a communication link that couples the local disk system to the 
remote disk system, so that the local disk system may send the data to the remote disk 
system without direct involvement from the host computer (see fig. 1, ref. num 16 of 
Ohran), wherein a first key is assigned to a first set of volumes in the local disk system, 
and a second key is assigned to a second set of volumes in the local disk system, each 
of the first and second set of volumes including one or more volumes (see col. 1 1 , lines 
53-55 of Ohran). However, the combination of Ohran as modified by Yanai et al. does 
not teach further comprising a step of maintaining an encryption control table on the 
local disk system, the encryption control table including a list of encryption keys for 
selected volumes of the local and the remote disk system. 

Jacobson teaches further comprising a step of maintaining an encryption control 
table on the local disk system (fig. 2, ref. num 232), the encryption control table 
including a list of encryption keys for selected volumes of the local and the remote disk 
system (fig. 10). 

It would have been obvious to one of ordinary skill in the art, at the time the 
invention was made, to combine maintaining an encryption control table on the local 
disk system wherein the table includes a list of encryption keys for selected volumes of 
the local and remote disk system, as taught by Jacobson , to the system of Ohran as 



Application/Control Number: 09/618,202 Page 13 

Art Unit: 2136 

modified by Yanai et al. It would have been obvious for such modifications because the 
table provides a list of keys to use for encryption and decryption for the local remote 
system. 

This new system uses a table of keys to determine how and when to encrypt and 
decrypt the data in the local and remote system. 

Regarding claims 3 and 19 , the combination of Oh ran and Yanai et al. as 
modified by Jacobson teaches wherein the list of encryption keys further includes 
information relating to the use and non-use of encryption on the local disk system (see 
col. 1 1 , lines 40-43 of Ohran suggests that encryption/decryption can occur, but does 
not have to occur). 

Regarding claims 4 and 20 , the combination of Ohran and Yanai et al. as 
modified by Jacobson teaches wherein the list of encryption keys further includes 
information relating to the use and non-use of encryption on the remote disk system 
(see col. 1 1 , lines 40-43 of Ohran). 

Regarding claims 5 and 21 , the combination of Ohran and Yanai et al. as 
modified by Jacobson teaches wherein the encryption key is applicable to less than all 
of the storage on the local disk system (see col. 1 1 , lines 40-43 of Ohran shows that 
some, less than all, of the data is encrypted). 
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Regarding claims 6 and 22 , the combination of Ohran and Yanai et al. as 
modified by Jacobson teaches wherein the encryption key is applicable to less than all 
of the storage on the remote disk system (see col. 1 1 , lines 43 of Ohran shows that 
some, less than all, of the data is decrypted). 

Regarding claim 7 , the combination of Ohran and Yanai et al. as modified by 
Jacobson teaches wherein the encryption key is applicable to at least one disk on the 
local disk system (see col. 11, lines 40-43 of Ohran and fig. 1, ref. num 20 of Yanai et 
al. shows that the different volumes would not have to be encrypted, such as the local 
volume, because transmission does not occur from the local volume). 

Regarding claim 8 , the combination of Ohran and Yanai et al. as modified by 
Jacobson teaches wherein the encryption key is applicable to at least one disk on the 
remote disk system (see col. 1 1 , lines 40-43 of Ohran and fig. 1 , ref. num 48 of Yanai et 
al. shows that the different volumes would not have to be decrypted, such as the local 
volume, because transmission does not occur to the local volume). 



Claims 9-11. 13-15, and 23 are rejected under 35 U.S.C. 103(a) as being 
unpatentable over Ohran (U.S. Patent Number 6,397,307). 
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Regarding claims 9 and 23 , Ohran teaches a method for changing an encryption 
key while operating a storage system having a local disk system and a remote disk 
system comprising: 

• Storing an encryption key in a memory in the local disk system (fig. 6, ref. num 
106a); 

• Transmitting the encryption key to the remote disk system and storing it in a 
memory there (fig. 6, ref. num 16 and 106b); 

• In the local disk system determining a boundary for use of the encryption key 
(col. 1 1 , lines 52-55 the keys are changed at every time of consolidation); 

• In the remote disk system receiving the boundary from the local disk system (fig. 
16, ref. num 16); 

• In both the local and the remote disk system, determining a relationship of 
present operations to the boundary (fig. 2, ref. num 30, 36, and 42); 

• In both the local and the remote disk system waiting for the boundary, and then 
changing the encryption key for data stored thereafter (fig. 2, ref. num 32 and 38 
and col. 11, lines 52-55) v 

Ohran does not specifically teach the encryption key is stored in the local disk 
and transmitted to the remote disk and stored. Ohran teaches the local disk and remote 
disk exchange values and calculate a key (the keys being equal), which is stored in the 
local disk system and remote disk system. 
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It would have been obvious to one of ordinary skill in the art, at the time the 
invention was made, to alter the key exchange process of Ohran to include transmitting 
the stored key from the local system to the remote system, instead of transmitting 
values to calculate the key. It would have been obvious for such modifications because, 
as suggested on col. 1 1 , lines 24-26, the keys could already be calculated and stored in 
the local system. This would save computation time of calculating keys by swapping 
values between the two systems. 

Regarding claim 13 , Ohran teaches a method of controlling encryption in a 
storage system having a local disk system and a remote disk system comprising: 

• Determining a boundary in the local disk system where encryption is to be 
switched to an opposite state (col. 1 1 , lines 52-55 the keys are changed at every 
time of consolidation); 

• In the remote disk system receiving a corresponding boundary from the remote 
disk system (the remote system boundary is the same place that the local system 
boundary is); 

• In both the local and the remote disk system, determining a relationship of 
present operations to the boundary (fig. 2, ref. num 30, 36, and 42); 

• In both the local and the remote disk system waiting for the boundary, and then 
changing the switching the encryption to the opposite state (fig. 2, ref. num 32 
and 38). 
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Ohran does not teach maintaining a control table in each of the local and remote 
disk systems, but rather keys (which control encryption) in each system. Also, tables 
containing data are well known in the art and would be an obvious addition to this 
system. 

It would have been obvious to one of ordinary skill in the art, at the time the 
invention was made, to combine maintaining a control table in each of the local and 
remote disk systems with the method of Ohran . It would have been obvious for such 
modifications because maintaining a control table in the local and remote disk system 
supplies data values to the disk systems telling them how to respond to data. 

Regarding claim 10 , Ohran as modified teaches wherein operations before the 
boundary are performed using a first encryption key and operations after the boundary 
are performed using a second encryption key (col. 1 1 , lines 52-55). 

Regarding claims 11 and 15 , Ohran as modified teaches wherein the boundary is 
defined by counting input/output operations and using the count to define the boundary 
(col. 13, lines 35-50 uses a decided time T to decide the boundary, and only the last IO 
operation before a decided time T is transmitted to the remote system). 



Regarding claim 14 , Ohran as modified teaches wherein operations before the 
boundary are either encrypted or not encrypted, and operations performed after the 
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boundary are either not encrypted or encrypted oppositely to those operations 
performed before the boundary (col. 1 1 , lines 40-43, the data can be encrypted at any 
time and can not be encrypted anytime, it all depends on the users' data). 

Response to Arguments 

5. Applicant amends claims 1, 2, 9, 12, 13, 16, 17, 23, 26, 27, and 30, and cancels 
claims 24 and 25. 

6. Applicant argues: 

a. Claim 1 does not teach the possibility of storing the data in an encrypted 
mode or an un-encrypted mode (see page 15 last paragraph through page 16, 
first paragraph). Also, the claimed invention is a transmission between storage 
devices, whereas the references are for a transmission between servers (see 
page 16, second paragraph). 

b. Claims 12, 16, and 26 do not include any of the mentioned features (see 
page 16, last paragraph and page 17, first and third paragraph). 

c. Claim 17 does not teach transfer between disk systems or storing in 
encrypted or non-encrypted form (see page 17, second paragraph). 

d. Claim 30 is not taught to include the local disk system performing the 
encryption and transmitting the data to the remote disk system, but instead the 
primary system or host performs these functions (see page 17, last paragraph). 

e. Dependent claims are allowable based on their dependency on 
independent claims (see page 18). 
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Regarding argument (a), examiner disagrees with applicant. First off, col -11, 
lines 24-26 and 40-45 suggest that some or all of the data may be encrypted/decrypted, 
meaning it does not have to be encrypted or decrypted in either disk system (local or 
remote). This clearly shows the possibility of storing the data in an encrypted mode or 
an un-encrypted mode; the choice exists. Second off, the definition of remote 
( Computer Science. Located at a distance from another computer that is accessible by 
cables or other communications links: a remote terminal.) taken from 
www-dictio nary.com explains that the local disk resides on one machine and the remote 
disk would reside on a separate machine connected by a communication link. 

Regarding argument (b), examiner disagrees with applicant. The amended 
features that were just included are the features that are being argued. The claims, as 
originally presented, did not have the amended features and therefore were rejected 
wholly based on what was presented originally. The newly amended features are 
shown rejected above. However, the amended features do not make the claims 
allowable. 

Regarding argument (c), examiner disagrees with applicant. As shown above for 
the rejection of claim 17, the transfer between disk systems is shown. Also shown is 
the remote disk system determining whether to decrypt the data or leave it encrypted. 

Regarding argument (d), examiner disagrees with applicant. Similarly to 
argument (a), the examiner does not see a difference between what is being argued 
and what was already rejected. The primary system (reference) is the local disk system 



Application/Control Number: 09/618,202 Page 20 

Art Unit: 2136 

(application) and the secondary system (reference) is the remote disk system 
(application). 

Regarding argument (e), examiner disagrees with applicant. Based on the 
arguments set forth by the examiner for arguments (a-d), the dependent claims stand as 
rejected. 

Conclusion 

7. Applicant's amendment necessitated the new ground(s) of rejection presented in 
this Office action. Accordingly, THIS ACTION IS MADE FINAL. See MPEP 
§ 706.07(a). Applicant is reminded of the extension of time policy as set forth in 37 
CFR 1.136(a). 

A shortened statutory period for reply to this final action is set to expire THREE 
MONTHS from the mailing date of this action. In the event a first reply is filed within 
TWO MONTHS of the mailing date of this final action and the advisory action is not 
mailed until after the end of the THREE-MONTH shortened statutory period, then the 
shortened statutory period will expire on the date the advisory action is mailed, and any 
extension fee pursuant to 37 CFR 1 .1 36(a) will be calculated from the mailing date of 
the advisory action. In no event, however, will the statutory period for reply expire later 
than SIX MONTHS from the date of this final action. 
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Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Brandon Hoffman whose telephone number is 703-305- 
4662. The examiner can normally be reached on M-F 8:30 - 5:00. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Ayaz Sheikh can be reached on 703-305-9648. The fax phone number for 
the organization where this application or proceeding is assigned is 703-872-9306. 

Information regarding the status of an application may be obtained from the 
Patent Application Information Retrieval (PAIR) system. Status information for 
published applications may be obtained from either Private PAIR or Public PAIR. 
Status information for unpublished applications is available through Private PAIR only. 
For more information about the PAIR system, see http://pair-direct.uspto.gov. Should 
you have questions on access to the Private PAIR system, contact the Electronic 
Business Center (EBC) at 866-217-9197 (toll-free). 
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